眼睛正在努力寻找造成这种情况的问题。我正在缩小它但我已经厌倦了改变不同的参数以使签名通过。我一直在将我的基本字符串和授权标题与google-code-playground的输出进行比较。
我一直在引用这篇文章,并认为我已经接近了:
我的基本字符串:
GET&安培; HTTPS%3A%2F%2Fwww.google.com%2Faccounts%2FOAuthGetRequestToken&安培; oauth_callback%3Dhttp%253A%252F%252Fgooglecodesamples.com%252Foauth_playground%252Findex.php%26oauth_consumer_key%3Danonymous%26oauth_nonce%3D1f8a27974826a0001f679186898bb79a%26oauth_signature_method%3DHMAC - SHA1%26oauth_timestamp%3D1313023952%26oauth_version%3D1.0%26scope%3Dhttps%253A%252F%252Fwww.google.com%252Fcalendar%252Ffeeds%252F
授权标题:
OAuth oauth_consumer_key =“anonymous”,oauth_nonce =“1f8a27974826a0001f679186898bb79a”,oauth_signature_method =“HMAC-SHA1”,oauth_timestamp =“1313023952”,oauth_callback =“http%3A%2F%2Fgooglecodesamples.com%2Foauth_playground%2Findex.php”, oauth_version =“1.0”,oauth_signature =“nHL5107wlVXrB5GJjyDClpc5pJs%3D”0signature_invalid
主要功能:
private function oAuthGetRequestToken()
{
echo "<pre>";
$secret = 'anonymous';
$url = 'https://www.google.com/accounts/OAuthGetRequestToken';
$scope = 'https://www.google.com/calendar/feeds/';
$authParams = array(
'oauth_consumer_key' => 'anonymous',
'oauth_nonce' => self::generateNonce(),
'oauth_signature_method' => 'HMAC-SHA1',
'oauth_timestamp' => time(),
'oauth_callback' => 'http://googlecodesamples.com/oauth_playground/index.php',
'oauth_version' => '1.0');
$unsignedBaseString = self::getBaseString('GET', $url, $authParams, $scope);
$unsignedKey = array($authParams['oauth_consumer_key'], $secret);
$unsignedKeyParts = array_map('urlencode', $unsignedKey);
$key = implode('&', $unsignedKeyParts);
$oauth_signature = self::hmacsha1($key, $unsignedBaseString);
$authParams['oauth_signature'] = $oauth_signature;
$rest = new Rest();
$oAuthGetRequestTokenResponse = $rest->OAuthHttpGetRequest($url, $authParams, $scope);
print_r($oAuthGetRequestTokenResponse);
}
助手功能:
protected function generateNonce()
{
$nonce = hash('md5', self::makeRandomString());
return $nonce;
}
protected function makeRandomString($bits = 256)
{
$bytes = ceil($bits / 8);
$return = '';
for ($i = 0; $i < $bytes; $i++) {
$return .= chr(mt_rand(0, 255));
}
return $return;
}
protected function hmacsha1($key, $data)
{
return base64_encode(hash_hmac('sha1', $data, $key, true));
}
protected function getBaseString($method, $url, $authParams, $scope)
{
$authString = '';
foreach($authParams as $key => $value)
$authString .= $key . "=" . urlencode($value) . "&";
$authString = rtrim($authString, '&');
$baseString = $method . '&' . urlencode($scope) . '&' . $authString;
return $baseString;
}
休息/请求功能:
public function OAuthHttpGetRequest($url, $authParams, $scope)
{
$oAuthHeaders = '';
$oAuthHttpGetResponse;
foreach($authParams as $key=>$value)
{
$oAuthHeaders .= $key . '="' . urlencode($value) . '", ';
}
$oAuthHeaders = rtrim($oAuthHeaders, ', ');
$authString = "OAuth " . $oAuthHeaders;
echo "<br/>" . $authString;
$urlWithScope = $url . '?scope=' . urlencode($scope);
if($curlHandle = curl_init())
{
curl_setopt($curlHandle, CURLOPT_URL, $urlWithScope);
curl_setopt($curlHandle, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($curlHandle, CURLOPT_HTTPHEADER, array("Authorization: " . $authString));
//curl_setopt($curlHandle, CURLOPT_POST, TRUE);
//curl_setopt($curlHandle, CURLOPT_POSTFIELDS, );
curl_setopt($curlHandle, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($curlHandle, CURLOPT_SSL_VERIFYHOST, 0);
$oAuthHttpGetResponse = curl_exec($curlHandle);
echo curl_errno($curlHandle);
echo curl_error($curlHandle);
curl_close($curlHandle);
}
else
die("Could not instance cURL, is the module enabled?");
return $oAuthHttpGetResponse;
}
答案 0 :(得分:0)
在第一次阅读时我认为你的问题出在getBaseString函数中:
$baseString = $method . '&' . urlencode($scope) . '&' . $authString;
我认为你应该在这里使用REQUEST TOKEN ENDPOINT而不是范围......
通过附加参数请求范围,因为OAuth协议通常不指定范围的存在 - 它们是更好地调整API访问所需的扩展,但它们不是协议工作所必需的。
创建基本签名字符串时,$ method之后包含的URL始终是接收请求的URL ...
在你的情况下,我认为它应该是:
$baseString = $method . '&' . urlencode($url) . '&' . $authString;
--- ADDON ---
更清楚一点:首次请求REQUEST令牌时,基本字符串应包含REQUET TOKEN终止的URL ...
稍后请求ACCESS令牌时,基本字符串应包含ACCESS TOKEN端点的URL
最后,在获取ACCESS令牌后,您正在访问资源(范围),然后基本字符串应包含资源的URL(在您的示例中也称范围)...